From c0b5836808739bcce1e5f854bd7edaa53a0d2afd Mon Sep 17 00:00:00 2001
From: Daniil Baturin <daniil@baturin.org>
Date: Wed, 25 Feb 2015 17:17:09 +0100
Subject: Bug #498: dirty hack to disallow remote command execution for
 operator level users.

---
 scripts/restricted-shell | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100755 scripts/restricted-shell

(limited to 'scripts')

diff --git a/scripts/restricted-shell b/scripts/restricted-shell
new file mode 100755
index 00000000..ffcbb53b
--- /dev/null
+++ b/scripts/restricted-shell
@@ -0,0 +1,11 @@
+#!/bin/bash
+
+if [ $# != 0 ]; then
+    echo "Remote command execution is not allowed for operator level users"
+    args=($@)
+    args_str=$(IFS=" " ; echo "${args[*]}")
+    logger "Operator level user $USER attempted remote command execution: $args_str" 
+    exit 1
+fi
+
+exec vbash
-- 
cgit v1.2.3